UNPKG

@pulumi/google-compliance-policies

Version:

This repository contains a growing set of Compliance Policies to validate your infrastructure using Pulumi's Crossguard Policy-as-Code framework.

86 lines (85 loc) 4.19 kB
"use strict"; // Copyright 2016-2024, Pulumi Corporation. // // Licensed under the Apache License, Version 2.0 (the "License"); // you may not use this file except in compliance with the License. // You may obtain a copy of the License at // // http://www.apache.org/licenses/LICENSE-2.0 // // Unless required by applicable law or agreed to in writing, software // distributed under the License is distributed on an "AS IS" BASIS, // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. // See the License for the specific language governing permissions and // limitations under the License. // // ------------------------------- WARNING ------------------------------------- // This file was programmatically generated. Do not edit unless you know what // you're doing. // ------------------------------- WARNING ------------------------------------- Object.defineProperty(exports, "__esModule", { value: true }); exports.DomainMapping = exports.AuthorizedCertificate = void 0; const policy_1 = require("@pulumi/policy"); const compliance_policy_manager_1 = require("@pulumi/compliance-policy-manager"); const v1alpha_1 = require("@pulumi/google-native/appengine/v1alpha"); const v1alpha_2 = require("@pulumi/google-native/appengine/v1alpha"); var AuthorizedCertificate; (function (AuthorizedCertificate) { /** * Disallow the use of non-stable (Alpha) resouces (appengine.v1alpha.AuthorizedCertificate). * * @severity medium * @frameworks none * @topics alpha, api, unstable * @link https://cloud.google.com/apis/design/versioning */ AuthorizedCertificate.disallowAlphaResource = compliance_policy_manager_1.policyManager.registerPolicy({ resourceValidationPolicy: { name: "googlenative-appengine-v1alpha-authorizedcertificate-disallow-alpha-resource", description: "Disallow the use of non-stable (Alpha) resouces (appengine.v1alpha.AuthorizedCertificate).", configSchema: compliance_policy_manager_1.policyManager.policyConfigSchema, enforcementLevel: "advisory", validateResource: (0, policy_1.validateResourceOfType)(v1alpha_1.AuthorizedCertificate, (_, args, reportViolation) => { if (!compliance_policy_manager_1.policyManager.shouldEvalPolicy(args)) { return; } reportViolation("Appengine AuthorizedCertificate shouldn't use an unstable API (appengine.v1alpha.AuthorizedCertificate)."); }), }, vendors: ["google"], services: ["appengine"], severity: "medium", topics: ["api", "unstable", "alpha"], }); })(AuthorizedCertificate || (AuthorizedCertificate = {})); exports.AuthorizedCertificate = AuthorizedCertificate; var DomainMapping; (function (DomainMapping) { /** * Disallow the use of non-stable (Alpha) resouces (appengine.v1alpha.DomainMapping). * * @severity medium * @frameworks none * @topics alpha, api, unstable * @link https://cloud.google.com/apis/design/versioning */ DomainMapping.disallowAlphaResource = compliance_policy_manager_1.policyManager.registerPolicy({ resourceValidationPolicy: { name: "googlenative-appengine-v1alpha-domainmapping-disallow-alpha-resource", description: "Disallow the use of non-stable (Alpha) resouces (appengine.v1alpha.DomainMapping).", configSchema: compliance_policy_manager_1.policyManager.policyConfigSchema, enforcementLevel: "advisory", validateResource: (0, policy_1.validateResourceOfType)(v1alpha_2.DomainMapping, (_, args, reportViolation) => { if (!compliance_policy_manager_1.policyManager.shouldEvalPolicy(args)) { return; } reportViolation("Appengine DomainMapping shouldn't use an unstable API (appengine.v1alpha.DomainMapping)."); }), }, vendors: ["google"], services: ["appengine"], severity: "medium", topics: ["api", "unstable", "alpha"], }); })(DomainMapping || (DomainMapping = {})); exports.DomainMapping = DomainMapping;